Welcome to the InfoSci Platform

ROP Defense Using Trie Graph for System Security

Alex Yao Chu Zhu, Wei Qi Yan, Roopak Sinha

Source Title: International Journal of Digital Crime and Forensics (IJDCF)13(6)

ISSN: 1941-6210|EISSN: 1941-6229|EISBN13: 9781799867531|DOI: 10.4018/IJDCF.20211101.oa7

MLA

Zhu, Alex Yao Chu, et al. "ROP Defense Using Trie Graph for System Security." IJDCF vol.13, no.6 2021: pp.1-12. http://doi.org/10.4018/IJDCF.20211101.oa7

APA

Zhu, A. Y., Yan, W. Q., & Sinha, R. (2021). ROP Defense Using Trie Graph for System Security. International Journal of Digital Crime and Forensics (IJDCF), 13(6), 1-12. http://doi.org/10.4018/IJDCF.20211101.oa7

Chicago

Zhu, Alex Yao Chu, Wei Qi Yan, and Roopak Sinha. "ROP Defense Using Trie Graph for System Security," International Journal of Digital Crime and Forensics (IJDCF) 13, no.6: 1-12. http://doi.org/10.4018/IJDCF.20211101.oa7

Export Reference

Favorite Full-Issue Download

View Full Text HTML

View Full Text PDF

Abstract

Most Intrusion Detection Systems (IDS) / Intrusion Prevention Systems (IPS) cannot defend the attacks from a Return Oriented Program (ROP) which applies code reusing and exploiting techniques without the need for code injection. Malicious attackers chain a short sequence as a gadget and execute this gadget as an arbitrary (Turing-complete) behavior in the target program. Lots of ROP defense tools have been developed with satisfactory performance and low costs overhead, but malicious attackers can evade ROP tools. Therefore, it needs security researchers to continually improve existing ROP defense tools, because the defense ability of target devices, such as smartphones is weak, and such devices are being increasingly targeted. Our contribution in this paper is to propose an ROP defense method that has provided a better performance of defense against ROP attacks than existing ROP defense tools.